» etagent.dll
Overview
Analysis
File Details

etagent.dll

EventTracker

Prism Microsystems, Inc.

File name:

etagent.dll

Publisher:

Prism Microsystems, Inc. (signed and verified)

Product:

EventTracker

Description:

EventTracker Agent (Vista)

Version:

8, 2, 10, 2

MD5:

55d30c7c5ba29853702e225b09b678ee

SHA-1:

36a5d1571d6956128d51f1abb3c686f205dfa37e

SHA-256:

b9f3f160f74eaecd08b9eb6c03f3b61390623cb8153dfed52852c77a1b27377f

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/23/2024 5:51:01 AM UTC (today)

Scan engine

Detection

Engine version

IKARUS anti.virus

PUA.Systweak

t3scan.2.1.16.0

File size:

1.3 MB (1,409,272 bytes)

Product version:

8, 2, 0, 0

Trademarks:

EventTracker

Original file name:

etagent.dll

File type:

Dynamic link library (Win32 DLL)

Language:

English (United States)

Common path:

C:\Program Files\prism microsystems\eventtracker\agent\etagent.dll

Digital Signature

Signed by:

Prism Microsystems, Inc.

Authority:

COMODO CA Limited

Valid from:

8/7/2013 8:00:00 PM

Valid to:

8/8/2018 7:59:59 PM

Subject:

CN="Prism Microsystems, Inc.", O="Prism Microsystems, Inc.", STREET=8815 Centre Park Drive, STREET=Ste 300, L=Columbia, S=MD, PostalCode=21045, C=US

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

3C269BC6D66708D5D59BEC690EB635CD

File PE Metadata

Compilation timestamp:

7/21/2016 10:36:41 AM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

9.0

CTPH (ssdeep):

24576:MgE8wmob8yG0Xbeq1lfCCKkEsiqx9wv56nYmC5pl7A3vb:tEz5DywJ1K6Y51iT

Entry address:

0xF366A

Entry point:

8B, FF, 55, 8B, EC, 83, 7D, 0C, 01, 75, 05, E8, DF, A5, 00, 00, FF, 75, 08, 8B, 4D, 10, 8B, 55, 0C, E8, EC, FE, FF, FF, 59, 5D, C2, 0C, 00, 83, 3D, B0, 8F, 12, 10, 00, 56, 74, 15, 68, B0, 8F, 12, 10, E8, 3F, 74, 00, 00, 59, 85, C0, 74, 06, FF, 15, B0, 8F, 12, 10, E8, 3F, 13, 00, 00, 8B, F0, 85, F6, 74, 16, 8B, 46, 04, 83, F8, FF, 74, 07, 50, FF, 15, 74, 61, 10, 10, 56, E8, E6, 14, 00, 00, 59, 6A, 00, FF, 15, 00, 62, 10, 10, CC, 6A, 0C, 68, 98, FF, 12, 10, E8, 5A, 2B, 00, 00, E8, 82, 13, 00, 00, 83, 65, FC... 
[+]

Entropy:

6.6750

Code size:

1 MB (1,068,032 bytes)

Scan etagent.dll - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.